I am always looking to improve our security, recently read again about how much saver Docker rootless is. Has anyone experience with running Docker Swarm in rootless mode?
I donāt think that will ever change. Creating an overlay network or manipulate network in any way requires root priviliges which you donāt have, because thatās the point of rootless Docker. Rootless Docker has too main benefits.
The root user in the container does not have root privileges on the host.
You can mount something from your host to the container as a non-root user and have it inside the container as root which is useful during development.
If you really want to have multiple nodes, you need to run Docker as root. You can still use user namespaces to have a root user in the container which is not root on the host. I donāt frequently use Swarm, but I donāt see why that would not work.